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6  Users  rely  on  IT  to  combat  high 
gas  prices.  |  Microsoft  plans  to 
add  support  for  the  OOF  and  PDF 
file  formats  to  Office  2007. 
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11  IT  Security  Report  Card 
Oats  Low  Grade  From  Critics. 

An  annual  report  card  on  federal  IT 
security,  and  the  internal  reports  on 
which  it’s  based,  are  seen  by  skep- 
tics  as  just  an  exercise  in  paperwork. 

12  IT  Finally  Opens  Hs  Eyes  to 
Camera  Phones.  It's  hard  to  keep 
gadgets  with  cameras  out  of  users' 
hands.  So  some  IT  departments 
have  stopped  trying. 


be  weaknesses,  as  he  recounts 
Robert  Madge'stale  of  the  collapse  of 
his  namesake  networking  company. 
20  Bruce  A.  Stewart  says  giving 
upsomecontroltobusinessunits 
can  leave  IT  more  in  charge  than 
it  is  when  it  cracks  down  with  a 
command-and-control  approach. 

34  Paul  M.lngevaldson  lays 
downtherulesfortravelingCIOswho 
want  to  count  the  number  of  coun¬ 
tries  they've  visited. 

40  Frankly  Speaking:  Frank 
Hayes  goes  down  the  rabbit  hole 
trying  to  follow  the  ins  and  outs  of  the 
XML  file  format  standardization  war 
that  Microsoft  launched. 


15  On  the  Mark:  Mark  Hall 

reports  that  idle  servers  are  the 
devil's  tools,  eating  up  energy  while 
doing  nothing. 

16  The  Grill:  Don  Tapscott, 

author  of  Wikinomics,  talks  about 
enabling  “mass  collaboration."  build¬ 
ing  trust  and  understanding  that  Web 


Turning  H  Into  Fun.  An  audit 
shows  a  need  for  better  secunty- 
awareness  training.  But  C.J.  Kelly 
needs  to  find  a  way  to  make  it  both 
cheap  and  entertaining. 

36  Career  Watch:  “Iwastryingto 
get  my  gun  back  from  the  police"  and 
other  wacky  excuses  for  being  late. 
38  Shark  Tank:  A  software  proj¬ 
ect  that  finishes  on  time,  on  budget 
and  with  hardly  any  problems  is  rare 
enough  that  pilot  fish  thought  it  im¬ 
portant  to  explain  his  secret. 
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COVER  STORY:  Hearty  seven  years  after  9/11,  information- 
sharing  problems  that  have  hobbled  federal,  state  and  local 
law  enforcement  agencies  are  just  beginning  to  be  solved. 


26  Five 
Easy  Ways 
To  Commit 
Career 
Suicide 

IT  MENTOR:  Technology  can 
help  you  shoot  yourself  in  the 
foot,  but  old-fashioned  blun¬ 
ders  can  still  take  you  down 
too.  Here  are  some  tips  to 
you  dodge  the  bullet. 


28  Zero  Day  Threat 

In  this  book  excerpt,  authors  Byron 
Acohido  and  Jon  Swartz  examine  how 
Microsoft's  Trustworthy  Computing 
initiative  missed  the  boat  on  cybercrime. 
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Identity  and  Access  Management  (1AM).  That  mean 
market  opportunities.  And  with  best-in-class  modul 
To  learn  more  about  the  full  potential  of  IT  security, 


:t  it  to,  have  it  do  something  no  one  would  ever  expect:  Make  yo 
npetitive  than  ever  before.  CA's  approach  to  IT  security  centraliz 
you  can  deploy  applications  faster  and  more  securely  to  capitalize  ( 
rity,  scalability  and  integration,  CA  security  solutions  enable  growl 
lownload  the  ebook  at  ca.com/secure. 


Don  Tennant 

Strengths  and 
Weaknesses 


HERE’S  A  fine  line  between  commitment  and  fo¬ 
cus  on  one  hand,  and  obstinance  and  myopia  on 
the  other.  Or  perhaps  there’s  no  line  at  all.  Maybe 
they  only  differ  when  the  context  differs. 


That’s  the  lesson  I  took 
from  the  16th  World  Con¬ 
gress  on  Information  Tech¬ 
nology  in  Kuala  Lumpur, 
Malaysia,  where  I  moder¬ 
ated  a  couple  of  CIO  panel 
discussions.  Those  discus¬ 
sions  were  phenomenal, 
as  was  the  entire  program 
of  the  three-day  congress. 
But  the  lesson  I  took  away 
didn't  come  from  the  pro¬ 
ceedings.  It  came  from 
a  discussion  I  had  over 
breakfast  one  morning 
with  Robert  Madge. 

Chances  are  that  name 


1985.  Because  of  its  high 
cost  and  complexity  com¬ 
pared  with  Ethernet,  Token 
Ring  was  on  a  downward 
slide  and  would  never  re- 

Madge  left  the  company 
in  2001,  and  in  2003  Madge 
Networks  filed  for  bank¬ 
ruptcy  protection.  It  was 
subsequently  restructured 
as  Madge  Inc.,  and  in  2006 
it  was  acquired  by  Network 
Technology  in  the  U.K.  and 
merged  into  that  company’s 
Ringdale  arm.  Robert 
Madge  went  on  to  take  an 


principle  that  was 
epitomized  by  his  refusal  to 
pay  patent  royalties  to  Olof 
Soderblom,  the  IBM  scien¬ 
tist  who  pioneered  Token 
Ring.  Madge  insisted  that 
Soderblom’s  patent  didn’t 
cover  what  his  company 
and  others,  including  IBM 
and  NCR,  were  doing  with 
Token  Ring. 

It  was  a  costly  battle,  and 
Madge’s  U.S.  sales  dried 
up  for  nine  months.  But 
he  eventually  prevailed  in 
court,  and,  according  to 
Madge,  the  other  compa- 


the  company,  would  be  to 
merge  with  or  be  sold  to 
another  company.  In  hind¬ 
sight,  it  would  have  been 
the  logical  course.” 

But  despite  the  urging 
of  some  members  of  his 
management  team,  it  was 
a  course  that  Madge  never 
pursued. 

“To  me,  the  company 
was  very  personal"  Madge 
said.  “I  put  my  name  on  it, 
and  I  came  from  a  culture 
where  companies  were  for 
life.  So  I’m  sure  that  emo¬ 
tionally,  I  wasn’t  in  a  good 
position  to  consider  objec¬ 
tively  whether  it  should  be 
sold  or  not." 

The  lesson  was  clear. 

“People’s  weaknesses 
and  strengths  are  nor¬ 
mally  the  same  things.  It 
all  depends  on  the  context 
whether  they  turn  out  to  be 
strengths  or  weaknesses,” 
Madge  said.  “The  reason 
why  I  didn't  see  the  writing 
on  the  wall  when  the  best 
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Rising  Fuel  Prices 
Prime  Pump  for 
More  Telecommuting, 
Virtual  Meetings 


The  tipping  point  on 
gas  prices  came  about 
a  month  ago  for  Bill 
Lucas,  an  IT  engineer  at 


Bagozzi  said.  But  he  noted 
that  gas  prices  in  Toronto 
were  about  $1.25  (Canadian) 
per  liter  last  week  —  an 
amount  equal  to  nearly  $5 


telecommuting  programs 
or  explore  the  idea  of  doing 
so.  Some  are  also  turning  to 
virtual  meeting  techn^lo- 


down  on  travel. 

Expanded  use  of  video- 
conferencing  technology 
from  Cisco  Systems  Inc.  has 
helped  The  Procter  &  Gam¬ 
ble  Co.  reduce  its  corporate 
travel  spending  by  15%  over 
the  past  year,  said  Marta 
Foster,  vice  president  of 
business  solutions  for  global 
business  services  at  P&G. 

David  Trumble,  an  enter- 


Enabling  the  Revolution 


■  NEWS  DIGEST 


Delays,  Cost  Overruns 
Plague  Portland  IT  Project 


DELAYS  and  cost  over¬ 
runs  forced  the  city 
of  Portland,  Ore.,  to 
replace  the  consultant  it 
hired  to  oversee  an  IT  proj¬ 
ect  whose  price  tag  spiraled 
from  $31  million  to  almost 
$50  million  over  20  months. 

The  city  launched  the 
project  in  late  2006  with 
the  expectation  that  by  De¬ 
cember  2007,  new  comput¬ 
ers  and  SAP  applications 
would  be  installed,  and  300 
key  software  and  hardware 
systems  would  be  over¬ 
hauled  and  integrated. 

When  it  became  appar¬ 
ent  late  last  year  that  the 
,  project  was  facing  delays, 
the  city  moved  to  terminate 
its  contract  with  Ariston 
Consulting  &  Technologies 
Inc.,  the  firm  overseeing  the 
effort,  said  Laurel  Butman,  a 
principal  management  ana¬ 
lyst  in  Portland's  Office  of 
Management  and  Finance. 

The  city  quickly  sought 
help  from  SAP  AG  con¬ 
sultants,  who  blamed  the 
delay  on  “the  process  of  ap¬ 
proaching  the  implementa- 


The  SAP  consultants  ex¬ 
tended  the  project's  time¬ 
line  and  now  expect  the 
SAP  financial  software  to 
be  running  by  this  Novem¬ 
ber  and  the  vendor’s  hu¬ 
man  resource  applications 
by  next  May. 

Robert  Stoll,  a  Portland 
attorney  representing  Aris¬ 
ton,  said  the  San  Diego- 
based  company  set  the 
project's  budget  and  sched¬ 
ule  based  on  information 
provided  by  city  officials 
who  were  not  familiar  with 

M  It's  sort  of 
‘garbage  in, 
garbage  out,' If  you 
know  what  I  mean. 

I  certainly  don’t 
think  that  Ariston 
made  any  mistakes. 
The  city,  rightly  or 
wrongly,  lost  confi¬ 
dence  in  Ariston. 

ROBERT  STOLL, 

ATTORNEY  REPRESENTING 
ARISTON  CONSULTING  4 
TECHNOLOGIES  INC. 


Portland's  IT  systems  and 
needs.  "It’s  sort  of 'garbage 
in,  garbage  out,'  if  you 
know  what  1  mean,”  he  said. 

“I  certainly  don't  think 
that  Ariston  made  any  mis¬ 
takes.  The  city,  rightly  or 
wrongly,  lost  confidence  in 
Ariston,"  Stoll  added. 

Stoll  and  the  city  are  still 
working  to  settle  disagree¬ 
ments  about  payments  for 
change  orders.  “We  hope 
that  we're  not  going  to  have 
to  take  legal  action,"  the  at¬ 
torney  said.  “I’m  very  hope¬ 
ful  that  the  parties  will  be 
able  to  work  things  out.” 

Mark  Greinke,  who 
assumed  the  city’s  chief 
technology  officer  post  in 
February,  said  Portland 
officials  have  been  plan¬ 
ning  the  project  since  2001. 

Once  the  IT  systems  are 
upgraded,  most  city  work¬ 
ers  will  be  able  to  access 
the  new  SAP  applications 
through  Web-based  inter¬ 
faces,  Greinke  said. 

The  problems  with 
Portland's  IT  overhaul 
came  at  the  same  time  de¬ 
veloper  MetroFi  Inc.  halted 
partially  completed  work 
on  the  city’s  much-touted 
Wi-Fi  project,  after  cutting 
revenue  projections. 


Short 

lakes 


EMC  Execs  Look  to  Help 
Drive  Down  SSD  Prices 


■AMI  IVJT.i1.?,  "f.U 


LAS  VEGAS -EMC  Corp.  ex¬ 
pects  that  its  plan  to  spread 
solid-state  technology  through 
its  high-end  disk  storage  arrays 
will  help  cut  the  price  ol  the 
technology  and  make  it  more 
attractive  to  IT  executives. 

At  the  EMC  World  user  con¬ 
ference  here  last  week,  top  ex¬ 
ecutives  said  they  expect  solid- 
state  pricing  to  be  comparable 
to  that  of  high-performance 


Fibre  Channel  drives  by  2011. 

“The  price  for  flash  is  coming 
down  significantly  faster  than 
rotating  drives  right  now,”  said 
Dave  Donatelli,  executive  vice 
president  of  storage  platf  orms 
operations  at  EMC.  “Our  stated 
corporate  goal  is  we're  trying  to 
drive  it  down  as  fast  as  we  can." 

EMC  began  its  solid-state 
push  in  January  by  making  the 
technology  an  option  for  its 


high-end  Symmetrix  storage 
arrays.  The  products  use  solid- 
state  disks  made  by  Stec  Inc. 

K.  J.  Burke,  a  systems  engi¬ 
neer  at  gold  mining  operation 
Barrick  Gold  Corp.  in  Toronto, 
said  his  firm  is  looking  to  solid- 


state  technology  because  the 
servers  and  disk  drives  at  its 
mines  are  subjected  to  dust  and 
dirt  tracked  in  by  workers. 

“What  I  like  about  solid-state 
disk  is  there  are  no  moving 
parts  to  break  down."  he  said. 

John  Webster,  an  analyst 
at  llluminata  Inc.,  suggested 
that  Fibre  Channel  drives  will 
probably  also  drop  in  price  and 
increase  in  efficiency  over  the 
next  two  to  three  years. 

“I  think  it's  too  earfy  to  jump 
the  gun  on  this,"  Webster  said. 

-  LUCAS  MEARIAN 
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DEVELOPMENT  Portland's  IT  systems  and 
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major  corporate  IT  systems 
—  in  their  six-year  march 
through  five  Texas  counties 
in  the  Gulf  Coast  area. 

“These  ants  are  raising 
havoc,”  said  Roger  Gold, 
professor  of  entomology 
at  Texas  A&M  University. 
“They’re  foraging  for  food, 
and  they'll  go  into  any  space 
looking  for  it.  In  the  process, 
they  make  their  way  into 
sensitive  equipment." 

Just  last  week,  the  Texas 
Department  of  Agriculture 
requested  federal  funding  to 
study  the  species. 

Officials  believe  the  non- 


said  Paul  Nester,  a  program 
specialist  at  the  Texas 
AgriLife  Extension  Service. 

The  ants  are  dubbed  “crazy 
Rasberry  ants”  after  Tom 
Rasberry,  owner  of  Budget 


Global 

Dispatches 

U.K.  Health  Center 
Loses  Data  Tape 

ISLE  OF  WIGHT,  England  - 


The  tape  contained  medical 
records  of  current  and  former 
patients  dating  back  almost  t2 
years.  The  ILK.  National  Health 
Service  said  the  software  firm 


Hong  Kong  Finn, 
Intel  to  BuH  PC 


The  £5.3  mIHon  (S10.5  million 
UA)  proposal  caMs  for  train¬ 
ing  50  officers  to  Investigate 


being  made  to  find  IL'H  !  foreign  buyers  with  Chinese 
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IT  Security 


|  intent  of  FISMA  are  getting  i  The  overall  C  grade  hand- 
poor  grades  on  Davis' report  ed  out  by  Davis,  who  is  the 
card,  while  others  that  seem  ranking  minority  member 


From  Critics 

Federal  agencies  scored  a  C 
overall  on  an  annual  report 
card  that’s  based  on  their 
FISMA  compliance  reports. 
But  is  it  all  just  a  paperwork 
exercise?  By  Jaikumar  Vijayan 


, _  member  in  Davis’ 

that  are  highlighted  by  Con-  office,  which  asked  that  the 
gress  in  a  way  that  encour-  employee  not  be  identified, 
ages  agencies  “to  deliver  said  the  congressman  is 
misleading  results.”  working  to  “improve  the 

Karen  Evans,  who  is  the  efficacy  of  the  scores  and  to 
de  facto  federal  CIO  through  make  sure  the  [FISMA]  proc- 

her  role  as  administrator  ess  is  measuring  what  it's 
of  e-government  and  IT  at  supposed  to  be  measuring.” 
the  White  House  Office  of  According  to  the  staffer. 
Management  and  Budget,  Davis  is  drafting  legisla- 
acknowledged  that  federal  tion  that  would  give  FISMA 

officials  want  to  make  the  more  teeth.  The  goal,  he 
FISMA  reports  more  results-  said,  is  to  give  agencies  in- 
oriented.  centives  for  using  FISMA  to 

"OMB  and  [Congress]  improve  their  security  while 


Va.)  were  given  failing  secu¬ 
rity  grades  for  2007  on  the 
new  report  card,  while  eight 
got  grades  of  A-  or  better. 

The  grades  are  based  on 
reports  of  agencies'  compli¬ 
ance  with  the  Federal  Infor¬ 
mation  Security  Manage¬ 
ment  Act.  Those  reports  are 
compiled  annually  by  the 
inspector  general  at  each 
agency. 

Approved  by  Congress 
in  the  aftermath  of  the  9/11 
terrorist  attacks,  FISMA 
was  initially  seen  as  a  much- 
needed  measure  for  bolster¬ 
ing  IT  security  within  the 


generation  [requirements].” 

The  big  problem,  ac¬ 
cording  to  Paller  and 
other  critics,  is  that  FISMA 
doesn’t  require  agencies  to 
demonstrate  that  they  have 
effectively  implemented 
the  mandated  controls.  For 
instance,  an  agency  that 


how  well  they’re  doing 
with  security,"  he  noted.  4k 
“Where  are  the  grades 
for  private  industry?" 

But  Pescatore  added 
that  the  FISMA  process  ^ 
has  become  too  “paper- 
bound"  and  is  in  need  V 
of  a  “major  revamp."  For  ^ 

example,  he  said  he  would 
like  to  see  requirements  for 
continuous  vulnerability 
assessments,  such  as  those 
mandated  by  the  major  cred¬ 
it  card  companies  as  part  of 
the  Payment  Card  Industry 
Data  Security  Standard. 


,  •Department  of  Agriculture 
|  •Department  of  Commerce 
I  •  Department  ofOelense 
r  •Department  of  the  Interior 

•  Department  of  Labor 

•  Department  ot 
Transportation 

•  Department  of  the 
Treasury 

•  Department  of 
Veterans  Affairs 

•  Nuclear  Regulatory 
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IT  Finally 
Opens  Its. 
Eyes  to  J 
Camera  f 
Phones 

As  handheld  devices  with  i 
built-in  cameras  become  " 
more  and  more  prevalent, 

IT  departments  are  finding 
it  harder  to  keep  them  out  of 
the  hands  of  end  users. 

By  Matt  Hamblen 


g  now  available 

I  on  nearly  all 

\  wireless  hand- 

^  helds,  from 

inexpensive  cell  phones  to 

high-end  smart  phones  and 
PDAs.  While  that’s  con¬ 
venient  for  end  users  who 
want  to  use  their  phones  to 
take  pictures,  it’s  putting 
pressure  on  IT  managers 
to  reconsider  corporate 
policies  banning  camera- 
equipped  devices. 

Beginning  in  2004,  when 
handhelds  with  built-in 
cameras  first  became  widely 
available,  many  companies, 
worried  about  the  potential 


security 

vacy  threats  posed 
by  the  devices,  dug 
in  their  heels  and 
insisted  that  their 
workers 
to  use  models 
without  cameras. 

Four  years  later,  though, 
that  hard-line  approach  ap¬ 
pears  to  be  softening.  "Some 
companies  are  still  avoiding 
[handhelds  with  cameras], 
but  that’s  a  minority,”  said 
Gartner  Inc.  analyst  Ken 
Dulaney,  who  works  with 
many  Fortune  500  compa¬ 
nies  on  their  mobile  device 
purchases  and  policies. 

Jack  Gold,  an  analyst  at 
J.Gold  Associates  LLC,  said 
his  clients  are  also  relax¬ 
ing  their  rules.  “Most  are 
resigned  to  the  notion  that 
virtually  all  phones  include 


cameras,”  Gold  said. 

That’s  the  case  at  a  large 
U.S.  corporation  with  about 
30,000  BlackBerry  users. 

The  company  recently  lifted 
its  outright  ban  on  cameras 
for  new  device  purchases. 

“Even  the  low-end  phones 
are  coming  out  with  Blue¬ 
tooth  and  cameras,”  said  a 
senior  IT  manager  at  the 
company  who  asked  not 
to  be  identified.  But  even 
though  the  ban  was  lifted, 
that  doesn’t  mean  it’s  open 
season  on  camera  use: 

The  IT  manager  said  that 
whenever  tech  staffers  can 
use  management  tools  to  re¬ 
motely  disable  built-in  cam¬ 
eras,  they  are  doing  so. 

There  are  multiple  tools 
that  can  be  used  to  curtail 
internal  camera  use.  For 
example,  BlackBerry  maker 
Research  In  Motion  Ltd. 
offers  models  in  which  cam¬ 
eras  can  be  turned  off  via  its 
BlackBerry  Enterprise  Serv¬ 
er  software,  to  prevent  em¬ 
ployees  from  surreptitiously 
photographing  proprietary 
information  or  taking  other 
inappropriate  photos.  Micro¬ 
soft  Corp.  has  made  similar 
photo-blocking  capabilities 
available  for  devices  running 
Windows  Mobile,  via  its  Ex¬ 
change  ActiveSync  synchro¬ 
nization  technology. 

In  addition,  some  hand¬ 
helds  are  still  being  config¬ 
ured  and  sold  without  cam¬ 
eras  in  order  to  satisfy  the 
demands  of  business  buyers 
with  strict  no-camera  poli¬ 
cies.  For  example,  Verizon 
Wireless  continues  to  stock 
camera-free  devices,  such  as 
the  BlackBerry  8830,  among 
its  inventory  of  about  30 
mobile  devices  from  various 
hardware  makers. 

“Some  companies  don’t 
see  the  camera  as  an  issue, 
but  some  still  prefer  that 
employees  not  have  them,” 
a  Verizon  Wireless  spokes- 
I  Continued  on  page  14 
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Are  you  controlling  your  servers,  or  are  they  controlling  you? 
It's  time  for  virtualization  from  CDW. 


VMware  Infrastructure  3 


center  management  and  optimization  suite  for  servei 
ise  hardware  utilization  by  50%-70% 

■ase  hardware  and  software  capital  costs  by  40% 


Standard  Edition  CDW  994692 
Enterprise  Edition  CDW  994419 


O 


Sun  SAS  Internal  Hard  Drives 


73GB  S291 .99  CDW  1312446 
146GB  S382.99GDW  1311622 


♦.Vh» 


We’re  there  with  the  server  virtualization  solutions  you  need. 

It’s  time  to  end  the  server  sprawl.  CDW  can  help  you  run  all  your  operating  systems  and  applications  from 
a  single  virtual  server.  Not  only  does  that  free  up  space  and  lower  costs,  it  also  reduces  IT  management. 
Our  technology  specialists  can  recommend  the  right  virtualization  solution  for  your  business.  And  our 
custom  configuration  services  will  set  up  your  technology  to  your  specifications.  So  call  CDW  today,  and 
finally  put  your  servers  in  their  place.  I 

CDW.com  800.399.4CDW 


The  Right  Technology.  Right  Away. 


a  pinhole  and  can  be  easily 
hidden,  making  it  extremely 
hard  to  detect  cameras  in 
some  cases.  Even  confirm¬ 
ing  that  a  phone’s  camera  is 
turned  off  can  be  difficult 
because  doing  so  requires 
close  examination  of  the 
device's  user  interface. 

Dulaney  first  wrote  about 
camera  phones  as  a  security 
threat  in  early  2004,  after 
vendors  flooded  that  year's 
Consumer  Electronics  Show 
with  announcements  of  the 
devices.  But  he  said  then 
that  camera  bans  were  “an 


on  a  handheld  device  can 
actually  be  valuable  for  em¬ 
ployees  in  some  situations 
—  even  for  surreptitiously 
photographing  crimes  be- 


camera  phones.  “It's  pretty 
hard  to  draft  and  maintain  a 
policy  on  [buying]  technol¬ 
ogy  when  it  changes  so  of¬ 
ten  and  when  everyone  has 


from  $45  to  $200  each,  are 
designed  to  prevent  anyone 
but  the  user  sitting  in  front 
of  the  screen  from  seeing 
the  information. 

“We  don't  want  to  risk 
privacy,”  Mata  said.  But  he 
added  that  in  general,  set¬ 
ting  usage  guidelines  for 
camera-equipped  phones 
and  then  relying  on  the 
common  sense  of  users 
makes  more  sense  to  him 
than  slapping  a  ban  on  the 
devices  does.  “Some  things,” 
he  said,  “do  not  come  down 
to  a  technology  solution.”  ■ 


rm  Most  phones  today 
I  have  cameras  built 
in.  and  if  you  search  for  a 

d -featured  phone,  you 
r  will  not  be  able  to  find 
one  without  the  camera. 

JACK  GOLD,  ANALYST.  J.60LD  ASSOCIATES  LLC 


C0MPUTERW0RLD 


On  the  Mark 


formance  based  on  what  it  learns. 
The  WS1000  will  start  at  $30,000. 

Too  Many 
Orphans  in  IT 

Symark  International  Inc.,  which 
does  business  as  Symark  Software 


Dance,  Apps,  Dance! 

If  Web  services-based  applications 


Idle  Servers  Eat  Energy 

CASSATT  CORP.  is  betting  that  soaring  energy  costs  and 

increased  green  awareness  in  IT  will  make  a  new  feature  in 
Cassatt  Active  Response  data  center  management  software 
appealing.  With  the  release  of  Version  5.1  last  week,  users  of 
the  San  Jose-based  company’s  tool  will  be  able  to  set  poli¬ 
cies  to  turn  servers  off  when  the  software  detects  that  they  are  idle. 

Jay  Fry.  vice  president  of  mar-  I  generated.  The  upgrade  also  sup- 

says  the  policies  are  broad  ports  more  server  systems’ power 


DonTapscott 

The  Wikinomics  author  talks  about 

enabling  mass  collaboration,  build¬ 
ing  trust  and  understanding  why  Web 

sites  are  out  and  communities  are  in. 


In  the  book,  you  note  how  OoMcorp  used 


?  The  big  on 
we  fear  what  we  don’t  know  and  under¬ 
stand.  For  any  senior  executive  to  de- 
Continued  on  page  18 
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s's  into  heavy  metai.  What's  different  about 
Kodak  i1200  and  i1300  Series  Scanners?  It’s  what's  inside:  a  heavy-duty 
metal  paper  transport  that's  reliable  scan  after  scan.  Take  the  insider's 
online  "tour." 


Kodak  i1200  &  i1300  Series  Scanners 


Kodak 


Visit  kodak.com/go/heavymetal 


■  THE  GRILL  DON  TAPSCOTT 


The  other  thing  is  that  many  people  How  is  mass  collaboration  playing  out  in 
mistakenly  believe  this  is  about  social  the  pharmaceutical  industry,  where  corn- 

networking  and  hooking  up  online,  or  petition  is  so  fierce?  There’s  a  lot  of  cog- 
creating  a  gardening  community,  or  nitivfc  dissonance  among  pharmaceuti- 
- '  —  video  on  YouTiibe.  But  all  of  cal  executives.  In  the  biotechnology 


Mlf  you  ap¬ 
proach  it 
as  protect¬ 
ing  your  IP  from  the 
beginning,  you’ll  end 
up  like  the  record  in¬ 
dustry  and  have  your 
business  obliterated. 


military  officers. 

And  he  gave  away  his  intellectual 
property.  That's  unheard  of.  Why 
would  you  do  that?  Well,  the  market 
value  of  [Goldcorp]  went  from  $90  mil¬ 
lion  to  $10  billion,  and  a  lot  of  it  came 
down  to  trust. 

We  have  a  culture  of  control  rather 
than  a  culture  of  enablement  in  our 
companies.  We  seek  to  manage  risk 
by  being  opaque  and  by  trying  to  have 
tight  controls.  [But]  look  at  the  econo¬ 
my:  It's  in  the  tank.  All  these  principles 
go  against  the  grain:  they  don't  feel 
right  to  most  of  these  executives.  But 
$9  million  worth  of  research  tells  me 
these  are  the  axes  that  successful  21st- 


through  the  issues  that  you  just  cited? 

You've  got  80  million  young  people 
coming  into  the  workforce,  and  they, 
as  high  school  and  university  students, 
have  at  their  fingertips  more-powerful 


selves  and  producing  a  drug  and  using 
broadcast  media  to  push  it  out  into 
the  market,  you  apply  collaboration 
throughout  the  entire  process?  You  can 
share  IP  with  your  competitors,  and  ul 
timately  you  tap  into  “ideagoras”  [i.e., 
a  marketplace  of  ideas].  It's  a  great  ex¬ 
ample  of  an  industry  that  can  reinvent 
itsfelf  using  this  model. 


ration,  what  steps  do  companies  need 
to  taka  to  protect  their  own  intellectual 
property?  The  starting  point  shouldn't 
be,  “How  do  we  protect  our  IP?”  The 
starting  point  should  be,  “How  do  we 
innovate?”  IBM  doesn’t  expect  to  own 
its  primary  operating  system,  which 
now  is  Linux.  Every  one  of  us  has  a 
mutual  fund  that  includes  a  portfolio 
of  stocks:  high-tech,  U.S.,  Asian,  etc. 
Every  company  needs  a  portfolio  of 
intellectual  property  —  some  that  it 
protects,  some  that  it  shares  within  its 
business  Web  and  some  that  it  places 


IU 


FITS  NICELY  WHERE  ALL  THOSE  SERVERS  USED  TO  BE. 


virtualization  solution  that  brings  Windows®  Server  2008  and  SUSE®  Linux  Enterprise  Server  together  is  here, 
so  is  joint  customer  support  from  Microsoft®  and  Novell®.  So  you  can  run  two,  three  or  even  four  applications 
i  the  same  server  with  your  choice  of  operating  system  —  and  get  more  reliability,  flexibility,  efficiency  and 


utilization  than  ever  before.  All  with  clearly  defined  intellectual  property  rights  and  no  support  headaches. 


RUN  WITH  IT  AT  MOREINTEROP.COM  Novell.  Mkxosoft 


Bruce  A.  Stewart 

Taking  Control 
By  Letting  Go 


I  KNOW  OF  a  central  IT  group  that  recently  grew  eight¬ 
fold  overnight.  No,  not  through  a  merger  —  it  was  the  us¬ 
ers  turning  their  shadow  IT  groups  over  to  IT  because 
they  don’t  need  them  anymore.  All  of  this  happened  be¬ 
cause  this  central  IT  organization  got  into  the  business  of  creat¬ 
ing  tools  for  users  to  satisfy  reasonable  IT  needs  on  their  own. 

Most  of  the  IT  groups  I  i  making  themselves  the  i  formal  project  required. 


see  operate  in  comm: 
and-control  mode,  be 
out  of  the  needs  for  si 
rity  and  compliance. 


making  themselves  the 
vendors  of  choice. 

At  one  of  my  clients,  the 
basic  materials  being  pro¬ 
vided  take  the  form  of  or- 


n 


to  audit  spreadsheets  and 
Access  databases  for  integ¬ 
rity:  Users  can  face  corpo¬ 
rate  compliance  and  audit 
on  their  own  or  have  their 
systems  checked  out  and 
approved  by  IT.  Almost  no 
one  goes  it  alone  —  and 
the  security,  integrity  and 
compliance  needs  are  met 
cooperatively. 

Meanwhile,  IT  offers  a 


a  door  is  closed,  a  way  to 
get  around  it  opens  up. 

IT  organizations  that 
open  doors  and  find  ways 
to  serve  their  users  quickly 
—  even  to  the  point  of 
turning  over  certain  types 
of  development  frame¬ 
works  to  them  —  aren't 
giving  up.  Rather,  they’re 
being  businesslike  and 


■  When  you 
make  K  easy 
to  do  business 
with  you,  you 
get  business. 


get  small  things  done  fas 
without  IT,  while  the  re: 
could  go  through  propei 
channels.  The  business 
side  kept  the  most  talent 
analysts  and  turned  the 
others  over  to  central  n 
where  they  could  grow. 

The  CIO  also  moved  t 


>ut  of  the  IT  cally  users  respond.  ■ 
they  could  Bruce  A.  Stewart  is  CEO 

s  done  fast  of  Vancouver,  British 

ile  the  rest  Columbia-based  Accendor 

gh  proper  Research  Inc.,  an  advisory 

business  services  firm  focused  on 


the  technology-enabled 
enterprise.  He  can  be 
reached  at  bruce.stewart(i 


COMPUTERWORLD  MAY: 


WHEN  INFORMATION  AVAILABILITY  MATTERS 


I  r 

L  I 


SunGard.  Setting  new  standards  for 
Infonnation  Availability  by  delivering 
a  range  of  solutions  that  meet  your 
specific  availability  objectives.  Flexible 


Criminal 

NEGLIGENCE 


■  COVER  STORY 


Nearly  seven  years  after  9/11, 
information-snaring  problems 
that  hobble  law  enforcement  are 
just  beginning  to  be  solved. 

BY  ROBERT  L.  MITCHELL 


^  Failure  to 
Communicate 


upgrades  to  those  systems  and  have 
already  taken  steps  to  facilitate  data 
sharing.  Although  federal  agencies  use 
many  databases  for  law  enforcement, 
the  three  primary  identity  databases 
are  the  FBI's  Integrated  Automated 
Fingerprint  ID  System  (IAFIS);  the 
DHS’s  IDENT  fingerprint  database  of 
90  million  foreign  nationals,  gathered 
from  visa  applications  and  used  at  all 
points  of  entry  ;  and  the  U.S.  Depart¬ 
ment  of  Defense’s  Automated  Bio¬ 
metric  Identification  System  (ABIS), 
currently  used  to  monitor  foreign  na¬ 
tionals  entering  and  leaving  U.S.  mili¬ 
tary  bases  in  Iraq  and  Afghanistan. 

IDENT,  IAFIS  and  ABIS  are  all  ca- 


fields  outside  of  law  enforce- 
>  emergency  management 
the  process  of  being  up¬ 
dated,  and  contracts  to  develop  the  next 
generations  of  IAFIS  and  ABIS,  which 
will  add  facial  and  iris  image-recognition 
capabilities,  were  awarded  in  February. 


■  COVER  STORY 


Nearly  seven  years  after  9/11, 
information-sharing  problems 
that  hobble  law  enforcement  are 
just  beginning  to  be  solved. 

BY  ROBERT  L.  MITCHELL 


U  agents  intercept  a  man 
trying  to  enter  the  U.S. 
illegally  from  Mexico. 
Unaware  that  he  is 
wanted  by  the  FBI  for 
three  murders,  they 
return  him  to  Mexico.  The  man  re¬ 
turns  to  the  U.S.  and  murders  several 
more  people  before  being  caught. 

A  team  of  investigators  works  for  20 
years  to  bring  down  an  international 


_  Failure  to 
Communicate 


in  other  law  enforcement  databases 
scattered  across  the  U.S.,  the  case 
might  have  been  closed  in  three. 

True  stories  like  these  have  high¬ 
lighted  the  critical  need  to  improve  in¬ 
formation  sharing  among  law  enforce¬ 
ment  organizations,  but  it  wasn't  until 
the  9/11  attacks,  the  subsequent  9/11 
Commission  Report  and  a  presidential 
mandate  that  better  information  shar¬ 
ing  became  a  top  priority. 

The  initiatives  that  arose  from  that 
mandate  are  finally  beginning  to  open 
up  stovepiped  data  repositories  by 
transforming  how  law  enforcement 
agencies  at  the  federal,  state  and  local 
levels  capture,  store  and  share  data. 

The  biggest  changes  have  come 
in  two  areas:  how  law  enforcement 
identifies  bad  guys,  and  how  investiga¬ 
tors  gain  access  to  incident  reports 
documented  by  more  than  20  federal 
agencies  and  20,000  state,  county,  lo¬ 
cal  and  tribal  law  enforcement  organi¬ 
zations  nationwide.  “You’ll  be  able  to 
search  data  that  you  never  had  access 
to  before,”  says  Tom  Bush,  assistant 


databases.  Initiated  by  the  U.S.  Depart¬ 
ment  of  Justice,  GJXDM  was  released 
in  2003.  "By  2004,  there  were  projects 
all  across  the  country  using  it,”  says 
Paul  Wormeli,  executive  director  of 
the  Integrated  Justice  Information  Sys¬ 
tem  Institute,  a  public-private  partner¬ 
ship  that  helped  develop  the  standard. 

Ip  2005,  CIOs  at  the  DOJ  and  the 
U.S.  Department  of  Homeland  Security 
agreed  to  build  the  National  Informa¬ 
tion  Exchange  Model  (NIEM),  an  ex¬ 
tension  of  GJXDM  that  facilitates  data 
sharing  beyond  law  enforcement  to 
the  areas  of  justice,  public  safety,  intel¬ 
ligence,  homeland  security,  and  emer¬ 
gency  and  disaster  management.  Work 
is  also  beginning  on  direct  computer- 
to-computer  data  exchanges  using  Web 
services.  “This  field  is  waking  up  to 
service-oriented  architectures,"  says 
Wormeli,  noting  that  some  reference 
architectures  are  already  in  place. 

These  standards  are  designed  to 
solve  the  problem  of  proprietary  and 
incompatible  law  enforcement  record 
management  systems  without  requir- 


upgrades  to  those  systems  and  have 
already  taken  steps  to  facilitate  data 
sharing.  Although  federal  agencies  use 
many  databases  for  law  enforcement, 
the  three  primary  identity  databases 
are  the  FBI's  Integrated  Automated 
Fingerprint  ID  System  (IAFIS);  the 
DHS*s  IDENT  fingerprint  database  of 
90  million  foreign  nationals,  gathered 
from  visa  applications  and  used  at  all 
points  of  entry:  and  the  U.S.  Depart¬ 
ment  of  Defense's  Automated  Bio¬ 
metric  Identification  System  (ABIS), 
currently  used  to  monitor  foreign  na¬ 
tionals  entering  and  leaving  U.S.  mili¬ 
tary  bases  in  Iraq  and  Afghanistan. 

IDENT.  IAFIS  and  ABIS  arc  all  ca¬ 
pable  of  some  data  exchanges  by  way 
of  GJXDM  today,  but  each  is  being  re¬ 
worked  to  natively  support  the  NIEM 
standard  and  allow  data  exchanges  with 
databases  in  fields  outside  of  law  enforce- 


IDENTi 

dated,  and  contracts  to  develop  the  next 
generations  of  IAFIS  and  ABIS.  which 
will  add  facial  and  iris  image-recognition 
capabilities,  were  awarded  in  February. 


BROKEN  RECORDS 

The  second  half  of  law  enforcement's 
silo  problem  is  the  inability  to  access 
incident  reports. 

Agencies  share  information  on  crim¬ 
inals  and  arrest  records  with  the  FBI, 
but  the  incident  reports,  which  detail 
the  crimes,  remain  isolated  in  thou¬ 
sands  of  federal,  state,  county  and  local 
record  management  systems.  Those 

unstructured  data,  are  the  lifeblood  of 
investigations,  says  Maj.  Chris  Brown 
of  the  Oregon  State  Police. 

Although  75%  of  police  agencies 

records,  less  than  25%  of  those  systems 
are  capable  of  sharing  that  informa¬ 
tion.  says  Dan  Hawkins,  director  of 
public  safety  programs  at  Search,  a 
national  consortium  of  state  agencies 
that  promotes  information  sharing. 


KEY  TO  LAW 
ENFORCEMEN1 
DATABASE 
STANDARDS 


0  =  Global  Justice  XML  Data  Model  (GJXDM) 

=  National  Information  Exchange  Model  (NIEM) 


ranging  investigations,  such  as  Brown’s 
ultimately  successful  20-year  pursuit  of 
an  international  drug  ring.  In  that  case, 
he  says,  “the  scope  of  the  organization, 
the  number  of  places  involved  and  the 
distribution  of  people  presented  an  in¬ 
credible  challenge  to  investigators." 

So  last  March,  the  DOJ  and  the  FBI’s 
CJIS  division  began  rolling  out  the  Na¬ 
tional  Data  Exchange  initiative  (N-DEx), 
a  NIEM-compliant  database  and  data- 


sharing  network.  N-DEx  was  designed 
to  gather  and  exchange  incident  and 
case  reports,  as  well  as  arrest,  incarcera¬ 
tion  and  parole  records,  and  other  data 
with  all  NIEM-compatible  systems  in 
local,  state,  tribal  and  federal  agencies. 

Both  the  FBI  and  the  DOJ  wanted  to 
have  federated  search  capability  across 
incident  reports  residing  in  state  and 
local  record  management  systems  na¬ 
tionwide  while  allowing  those  records 


to  be  updated  and  maintained  by  their 
local  owners.  “The  locals  maintain  pos¬ 
session,  but  we  have  visibility  into  their 
sharable  information,  and  they  have 
similar  visibility  into  ours,”  said  Vance 
Hitch,  Justice  Department  CIO,  in  an 
e-mail  exchange  with  Computerworld. 

“Within  the  system,  well  do  correla¬ 
tion  of  data,  pull  out  entities  [incident 
data]  and  provide  the  ability  to  search 
the  data,"  says  program  manager  Kevin, 


Law  Enforcement 
Databases 


Department  of  Defense 


KEY  TO  LAW 
ENFORCEMENT 
DATABASE 
STANDARDS 


•  =  Global  Justice  XML  Data  Model  (GJXDM)  An  XML-basml 


ird  that  defines  tf 


=  National  Information  Exchange  Model  (NIEM)  I heNGI.  N-DEx  and  NGA  are  NIEM  comiiliant  which  men 
that  Ihey  meet  the  information  exchange  technical  standards  developed  by  the  DOJ  s  Office  of  Justice  Programs  an 
local  law  enforcement  agencies.  Based  on  the  GJXDM.  NIEM  is  an  updated  standard  that  serves  a  broader  communi 
beyond  law  enforcement  It  promotes  cross-domain  data  sharing,  such  as  exchanges  between  law  enforcement  and 
emergency  management.  NIEM  includes  GJXDM  as  well  as  other  data  structures. 


from  federal  agencies.  Initially,  records 
will  come  from  case  management 
systems  at  the  FBI  and  the  Air  Force 
Office  of  Special  Investigations,  fol¬ 
lowed  later  by  those  of  the  Bureau  of 


Defiant  Data 

Several  years  ago.  a  person  approached 
a  guard  at  a  nuclear  plant  and  ashed  a 
series  ot  suspicious  questions,  such  as 
where  he  had  obtained  his  uniform.  The 
guard  reported  that  the  person  asked  the 
questions  but  could  not  identify  him.  “How 
do  you  put  that  into  a  database  to  see  if 
someone  asked  similar  questions  at  an¬ 
other  nuclear  plant?”  asks  Paul  Wormeli. 
executive  director  of  the  Integrated  Jus¬ 
tice  Information  System  Institute. 

Better  integration  of  law  enforcement 
databases  can  help  identify  and  track  inci- 
tivity  for  known  criminals,  but  iden- 


COVER  STORY 


tifying  terrorists  is  more  challenging.  Many 
identity  matches  are  made  on  the  basis  of 
fingerprints,  and  law  enforcement  doesn't 
necessarily  have  fingerprints  for  known  or 
suspected  terrorists  unless  they’ve  been 
arrested  in  the  U.S.  or  have  been  picked  up 
by  the  IDENT  or  ABIS  systems. 

Not  only  is  matching  such  persons  with 
law  enforcement  identity  databases  diffi¬ 
cult;  figuring  out  how  to  identify  and  track 
possible  terrorists  raises  privacy  issues 
as  well.  Agencies  must  follow  privacy 
policies  that  determine  what  can  be  done 
with  identity  data,  how  long  it  can  be  kept 
on  hie  and  when  identity  information  is 
relevant  to  an  investigation. 

-  ROBERT  L.  MITCHELL 


damage  the  credibility  of 
the  organization. 

Here’s  another  example: 
Suppose  you’re  the  person 


them.  You  find  out,  while 
talking  to  a  customer,  that 
the  staffer  she  spoke  with 
gave  her  some  really  poor 
information.  At  this  point, 
you  may  think  the  staffer  is 


your  IT  colleagues  privately. 

3  CONTRADICTING 
THE  BOSS 
IN  PUBLIC 

Suppose  that  your 
boss  makes  a  factual  error 
while  giving  a  presentation. 


ON  THE 
BRIGHT 
SIDE 

AVOIDING  BLOOPERS 
IS  ONLY  THE  BEGINNING. 
HERE  ARE  SOME  SKILLS 
AND  CHARACTERISTICS 
THAT  YOUR  BOSS  WILL 
VALUE. 

THE  FIVE  MOST  VALUABLE 
SKILLS  IN  CURRENT 
rr  EMPLOYEES: 

1  Working  well 
with  customers 


sion,  will  identify  the  error, 
apologize  and  credit  you 
with  the  correction. 

4  COMMITTING 
SOCIAL  BLUN¬ 
DERS  AT  A  COM¬ 
PANY  EVENT 

Staff  misbehavior  at  office 


2.  Communication 

3.  Project  management 
4  Strategic  thinking 


2.  Communication  skills 

3.  Technical  knowledge 

4.  A  record  ot  innovation 


themselves.  Don  Micha¬ 
lak,  co-author  of  Making 
the  Training  Process  Work 
(Writers  Club  Press.  2001) 
and  a  consultant  for  compa¬ 
nies  such  as  Ford  Motor  Co., 
KPMG  International  and 
Marsh  &  McLennan  Co., 
stresses  that  such  functions 
are  not  purely  social  events. 
“Don’t  do  anything  you 
wouldn’t  do  at  the  office  or 
at  a  client's  office,”  he  says. 

Don’t  park  at  the  shrimp 


believer  in  maintaining 
good  relationships  with 
previous  employers.  Until 
2006,  Bass  served  as  direc¬ 
tor  of  academic  technologies 
at  George  Washington  Uni¬ 
versity.  After  leaving  GWU, 
he  eventually  formed  his 
own  company,  Successant 
LLC.  He  recently  negotiated 
a  consulting  contract  with 
—  you  guessed  it  —  his  old 


the  importance  ofleaving 
with  a  good  reputation  and  a 
record  of  solid  accomplish- 


joss  and  say,  for  example, 
’Oh,  you're  not  as  bald  as  I’d 
leard  you  were!” 


tages  of  the  new  job,  not 
the  shortcomings  of  the 


ake  things  up.  If 
I  something  from 
r  co-workers,  let 


contradict  the  boss  in  pub¬ 
lic?  I  can  think  of  only  two 
instances. 

First,  if  the  building  is  on 
fire  and  your  boss  is  point¬ 
ing  people  to  the  wrong  exit. 

Second,  if  the  boss  makes 
a  mistake  about  making  a 
mistake.  In  other  words,  if 
he  identifies  the  correct  ven- 

treme  discretion  when  your 
boss  misspeaks  in  public.  If 
the  matter  is  truly  important 
(for  example,  the  CIO  gives 
the  wrong  go-live  date  for 
your  SAP  project),  approach 
him  during  a  break  and  qui¬ 
etly  mention  the  mistake. 

A  smart  and  gracious  CIO, 
upon  resumption  of  the  ses- 

IT  people  left  traditional 
companies  with  visions  of 
pulling  in  millions  from 
start-ups,  only  to  be  rudely 
surprised  when  their  new 
companies  went  under. 

Those  who  left  on  good 
terms  with  their  former  em¬ 
ployers  had  a  better  chance 
of  being  rehired. 

MAY 

sense  to  avoid  these  deadly 
slip-ups.  ■ 

Sun  is  a  bus i- 
ness  consul- 

and  writer. 

Toucan 

JWk  read  his 
blog  at 

www.calvinsun.com. 
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WISHING  FOR  SECURE  REMOTE  ACCESS  CONTROL? 
GRANTED! 


■  SECURITY  |  BOOK  EXCERPT 


Continued  from  page  28 
the  summer  of 2006,  a  crack 
team  of  Vista  "evangelists” 
—  the  product  managers 
and  marketing  specialists 
assigned  to  wine  and  dine 
researchers,  analysts  and 
reporters  at  conferences 
and  other  events  —  began 
spreading  the  SDL  gospel. 
SDL  stood  for  Security 
Development  Lifecycle,  a 
process  for  meticulously 


BAND-AID  SOLUTION 

Gates  looked  up,  glared  an¬ 
grily  at  the  reporter  and  said 
he  didn’t  understand  the 
question.  After  a  few  more 
awkward  exchanges,  Gates 
took  a  swig  from  the  can 
of  Diet  Coke  his  handlers 
invariably  kept  within  his 
reach.  The  jolt  of  caffeine 
appeared  to  fire  his  synaps- 


velopment  lab.  It  did  very 
little  to  improve  security  of 
Web  2.0  software  typically 
developed  on  the  fly  and  de¬ 
ployed  quickly  as  a  service 


EXTREME  CAUTION 

By  the  close  of 2006  and 
the  start  of 2007,  a  select 
group  of  cybercriminals  had 
begun  sending  out  e-mail 
messages  to  workers  at  cer¬ 
tain  government  agencies 
and  large  corporations.  The 
e-mails  contained  corrupted 
Word,  Excel,  PowerPoint 


SUPERIOR  WEAPONRY 

With  attacks  multiplying, 
Russian  cybercrime  lords 
enriching  themselves,  and 
Chinese  cyberspies  roam¬ 
ing  wild,  Gates  unburdened 
himself  of  a  heavy  load  at 
RSA  2007.  Compared  to  try¬ 
ing  to  put  the  cybercrime 
genie  back  into  the  bottle, 


Congratulations 
to  Our  Finalists! 

The  “Best  Practices  in  Mobile  &  Wireless”  award 
recipients  will  be  honored  Tuesday,  June  10th  at  the 
6th  annual  Mobile  &  Wireless  World  conference  in 
Miami,  Florida. 

This  program  honors  IT  user  “best  practice”  case  studies 
selected  from  a  field  of  qualified  finalists. 


Finalists  in  each  of  the  following  categories  are: 

Business  Evolution  through  Mobilizing  Reid  Workers 

- - - - - — - 


MOBILE  &  WIRELESS  WORLD 

Best  Practices 

IN  MOBILE  &  WIRELESS 


We’d  like  to  thank  our  “Best 
Practice*  in  Mobile  &  Wireless” 
Judges  for 2008: 

•Timothy  Cox,  OnStar 

•  Mark  Dulle,  Dorfman  Pacific 

•  David  Dully,  Baptist  Health 

•  Thomas  Gagne,  Continental  Airlines,  Inc 

•  Sheng  Guo,  New  York  State  Unified 
Court  System 

•  Matthew  Hamblen,  Computerworld 

•  Randall  Headrick,  Air  National  Guard 

•  Julia  King,  Computerworld 

•  George  Pollack,  Wound  Technology 


•  Bill  Trusaell,  ThetatoPto 


■  SECURITY  MANAGER’S  JOURNAL  C.J.  KELLY 

Trouble 

Ticket 

AT  ISSUE:  Employees 

Getting  an  Fand 
Turning  It  Into  Fun 

An  audit  shows  a  need  for  more  effective 

security-awareness  training.  But  how  can 
it  be  both  cheap  and  entertaining? 

gave  up  usernames  and 
passwords  to  a  stranger 
with  careless  ease. 

ACTION  PLAN:  Make 
security  awareness 
training  more  memorable 
by  making  it  more  fun. 

But  how  could  I  reach  all 
the  agency  offices  spread 
out  over  the  state?  Video- 

conferencing,  that's  how. 

The  videoconferenced 
screening  is  certainly  go¬ 
ing  to  take  more  of  my 
time  than  the  intranet 
option  would  have.  I  have 

~mr  T’S  NEVER  fun  to  ploy  included  a  manager  training.  Obviously,  we  are 

get  an  F,  but  fun  is  who  considers  himself  to  not  getting  through, 

what  I  decided  we  be  particularly  IT-sawy.  Since  the  assessment 

needed  to  inject  into  (That  was  the  one  call  results  were  going  to  go 

our  training  when  that  wasn’t  random,  since  up  the  chain  of  command, 

ket  it  with  flair,  buy  the 
snacks  and  be  on  hand  for 
a  Q&A  afterward.  But  this 
approach  may  be  more  ef- 

Optimizing  Your 
Green  IT  Strategy 


Computerworld’s  Green  IT  Symposium 

September  17-18,  2008  •  Gaylord  National  Resort  and  Convention  Center 
Washington,  DC 

Attend  the  Green  IT  Symposium  and  learn  how  to: 

•  Find  out  why  80%  IT  executives  say  green  IT  is  important  to  their  organization 

•  Network  with  world-class  Spaders  who  have  developed  a  green  IT  game  plan 

•  Understand  how  this  pervade  tepicj*  affecting  IT  organizations  like  yours 

•  Participate  in  the  inaugjyptr^reen  IT  Awards"  honoring  early  adopters 
and  industry  leaders 

Topic  areas  include: 

•  Developing  a  Green  Enterprise  Game  Plan 

•  Reducing  IT  Power  Consumption  and  Environmental  Danger 

•  Understanding  the  Regulatory/Compliance  Landscape 

•  Finding  ROI  in  Green  IT  Practices 

•  Establishing  and  Understanding  Green  IT  Procurement  Policies 


r 


H 


Q. J  GREEN  IT  SYMPOSIUM 


COMPUTERWORLD 


For  complete  details,  or  to  register: 
www.greenitsymposium.com/cwad 


Paul  M  Ingevaldson 

The  Traveling  CIO 


A 


Thisi 

question  to  answer  be¬ 
cause  it’s  complicated  by 
many  shades  of  mean¬ 
ing.  How  do  you  define 
“country”?  Do  territories 
count?  What  about  Hong 
Kong?  Is  an  emirate  a 
country?  Is  the  U.K.  a 
single  country? 

And  then,  how  do  you 
define  “been  to”?  ■ 

When  I  was  running 
our  international  divi¬ 
sion,  we  decided  to  estab¬ 
lish  some  rules  on  how  to 
count  countries.  Since  I 
was  in  charge,  I  decided 
to  make  this  the  only 
dictatorial  portion  of  my 
job.  I  would  listen  to  any 
appeal,  but  my  decision 
was  final. 

Often,  I  was  accused  of 
making  decisions  based 
on  my  own  experiences, 
but  that  is  totally  bogus. 

The  first  question  that 
has  to  be  considered  is 
the  definition  of  a  coun¬ 
try.  The  U.N.  lists  192 
members,  but  it  doesn’t 
include  Vatican  City, 
Kosovo  and  Taiwan.  The 
U.S.  State  Department 
counts  194  countries, 
with  Taiwan  the  lone 


S  CIOs  begin  to  log  significant  international 
miles,  I  thought  I  would  help  you  answer  that 
ever-present  question,  “How  many  countries  have 
you  been  to?” 


exception.  In  addition, 
there  are  many  territories 
that  are  not  officially  con¬ 
sidered  countries,  such  as 
Guam  and  Bermuda. 

For  our  nonpolitical 
purposes,  we  will  count 
195  nations  and  all  non¬ 
contiguous  territories  as 
countries.  In  addition, 
there  are  several  special 
situations  that  I  have  ad- 

So,  here  are  my  rules. 
Of  course,  I’m  retired 
now,  so  with  someone 
else  in  charge,  they  prob¬ 
ably  have  changed. 

1.  You  must  leave  the 
airport*  in  order  to  count 
the  Country.  One  excep¬ 
tion  to  this  is  if  you  stay 
in  the  airport  hotel  over¬ 
night.  In  that  case,  you 
may  count  the  country.  A 
quick  trip  in  a  taxi  just  to 
count  a  country  violates 
the  spirit  of  the  process 
and  will  not  count. 

•The  hijackino  corollary: 

■  You  can’t  count 
a  country  if  you 
travel  across  it  by 


airplane,  balk 
or  dirigible. 


If  you  are  the  unfortu¬ 
nate  victim  of  a  hijack¬ 
ing,  you  get  the  hijacking 
bonus:  Any  airport  that 
you  stop  at  counts  as  a 
country  visited. 

2.  You  can't  count  a 
country  if  it  was  not  a 
country  when  you  visited  it. 
So  pre-2008  Kosovo,  for 
example,  doesn’t  count. 

3.  You  can  count  a 
country  if  it  was  a  country 
when  you  visited,  even 
though  it  is  no  longer  a 
country,  e.g.,  Hong  Kong, 
the  USSR. 

4.  You  can  count  a  coun¬ 
try  if  you  take  a  train  or 
car  through  it,  even  if  you 
never  leave  the  vehicle, 
e.g.,  an  auto  trip  through 
Monaco. 

5.  You  can't  count  a 
country  if  you  travel  across 
H  by  airplane,  balloon,  di¬ 
rigible  or  other  airborne 
conveyance. 

6.  If  you  take  a  ride  from 
the  airport  into  the  city 
center,  you  may  count  the 
country,  even  if  you  don’t 
stay  overnight. 

7.  You  must  be  ex-utero 
(outside  the  womb)  to 
count  the  country.  And  if 
you  were,  you  may  count 


it  even  though  you  have 
no  memory  of  the  visit 


England  are  considered 
countries,  as  are  the  Pal¬ 
estinian  territories  and 
Gibraltar. 

9.  The  United  Arab  Emir¬ 
ates  is  a  single  country 

with  six  emirates.  Ant¬ 
arctica  is  considered  a 
country  even  though  it  is 
a  continent. 

10.  Islands  around  the 
world  have  special  relation¬ 
ships  with  various  coun¬ 
tries.  Some  are  obviously 
part  of  a  country,  such  as 
Bali  and  Hawaii.  Others 
are  considered  separate 
countries,  e.g.,  Green¬ 
land,  Puerto  Rico  and 
French  Polynesia. 

I’m  sure  there  will  be 
some  disagreement.  I’ll 
listen,  but  be  ready  to 
have  your  argument  re¬ 
jected.  This  is  a  tough  job, 
but  somebody  has  to  do 
it.  So  when  you  have  an 
idle  minute  or  perhaps  a 
six-hour  flight,  count  your 
countries.  Once  you  reach 
the  50  mark,  you  are  of¬ 
ficially  a  traveling  CIO. 

By  the  way,  I  visited 
my  75th  country  last  year 
when  we  went  to  New 
Zealand  in  December. 
What  a  beautiful  place!  ■ 
Paul  M.  Ingevaldson  retired 
as  CIO  at  Ace  Hardware 
Carp,  in  2004  after  40  years 
in  the  IT  business.  Contact 
him  at  ingepi@aol.com. 


S,  2008 


Cara 
Watc 

Mir 


■  ASK  A  PREMIER  100  IT  LEADER 


BETTER  . 

Late 

Never? 


Some  of  the  more  unusual  excuses  that  managers  said 
they  had  heart  from  employees  over  the  past  year  In 
Careerfiuilder.com's  annuel  “Late  to  Work"  survey: 

1.  While  rowing  across  the  river  to  work.  I  got  lost  in  the  fog. 

2.  Someone  stole  all  my  daffodils. 

3.  I  had  to  go  audition  for  American  Idol. 

4.  My  ex-husband  stole  my  car,  so  I  couldn't  drive  to  work. 

5 .  My  route  to  work  was  shut down  by  a  presidential  motorcade. 

6.  I  wasn't  thinking  and  accidentally  went  to  my  old  job. 

7.  I  was  indicted  for  securities  fraud  this  morning. 

8.  The  line  was  too  long  at  Starbucks. 

9.  I  was  trying  to  get  my  gun  back  from  the  police. 

10. 1  didn't  have  money  for  gas  because  all  the 


I  Ram  Murthy 

VI  he  director  of  application 


I  systems  at  the  Peace  (  orps 
answers  questions  about 

education,  certifications, 
leadership  and  dealing  with  slackers. 

Would  an  A*  certification  ;  expecting  to  have  information 
in  networking,  along  with  a  ;  available  anytime,  anywhere  and 
master’s  degree,  be  useful  in  I  by  any  means,  skills  in  mobile 
moving  one’s  career  along?  I  technology  and  mobile  applica- 
And  is  an  online  master's  de-  j  tion  development  will  be  widely 
gree  worth  much?  The  IT  held  ;  sought.  I  would  also  suggest 
is  continuously  evolving  to  meet  ;  that  your  rbsumb  should  show 
business  needs.  This  impliesthat  1  support  for  your  training  and 
the  IT  knowledge  worker  must  I  education  with  real-life  app  dev 

always  be  on  top  of  technology  ;  examples  to  get  the  attention  of 

and  invest  in  continual  learning.  ;  recruiters. 


Getting  A*  certification  in 
networking  with  a  master's 


:  In  12  years  in  IT,  I've  always 


degree  in  a  related  IT  held  does  !  been  frustrated  by  those 
somewhat  help,  but  it  must  be 


backed  up  with  professional 
on-the-job  skills  and  experi¬ 
ence.  With  respect  to  online  :  "Uiiii 
master's  degrees,  one  from  an  I  mam 
accredited  university  HowinHmwnJx 
does  carry  weight.  In 
fact,  in  this  network- 

centric  world,  online  - - - — 

and  self-paced  edu¬ 
cational  opportunities 
to  help  you  balance  I 
your  professional  and  ■ 


do  the  least  possible  work. 
They’re  like  Wally  in  the 


^  to  catch  on.  I've 


100  IT  Leaders,  send 


personal  activities  are  becom¬ 
ing  more  common. 

Remember,  though,  that  while 
certifications  and  education  can 
help  you  get  an  entry-level  job, 
you  will  need  to  support  your 
credentials  with  work  experience 
if  you  want  to  move  up. 

I'm  a  12-year  IT  industry 
professional  whose  position 


training  at  a  cost  of  about 
36,000.  Do  you  think  it's 
worth  the  investment?  Yes 

And  if  finding  funds  for  the  train¬ 
ing  is  an  issue,  check  out  the 
self-paced  and  free  classes  and 
j  code  camps  that  vendors  like 
Microsoft  and  IBM  offer. 

With  end  users  these  days 


ing.  (Why  are  the  Wallys  al¬ 
ways  the  last  to  be  laid  off?) 

;  What  would  you  advise?  The 

f  basic  problem  involves  visibility 
I  and  awareness.  Your  managers 
•  are  completely  blind  on  resource 
|  allocation  and  performance 
j  management.  There  should  be 
I  better  accountability.  They  need 
!  to  institute  weekly  status  reports 
;  and  related  communication  tools 
;  on  the  work  accomplished  that 
;  will  show  who  is  responsible. 

I  accountable  and  producing  the 

|  As  for  you  and  the  other  non- 
;  Wallys,  don't  be  modest  about 
;  marketing  yourself  and  your  ac- 
I  complishments.  You  might  also 
!  need  to  employ  creative  commu- 
;  mcations  to  your  customers  and 
|  businessunitssothemessage 
1  circles  back  to  your  boss  on  who 
I  actually  produces  the  work. 


1.  Whierawinoacrosslh0rTvw-towork,lootlostinlhBfcia 
SOT^’^dmydifadfe. . 


ft  I  hri  to  go  audition  for  American  Idof 

4.  Myex-tiisband  state  m»  car.  so  I  ca^t  drive  tojwak. . 

5yf^"r^tow^was^"^byapfKtotdnwton^e._ 

8.'  Ivimsnlltinl^^acddH^wenttomyold^i. . 

7.  I  was  rtict^  for  securities  fraud  the  morning, 
ft  Ttoinewastoolong^Sterbucks. 

ft  lwastry^togelmygunbacKtantfiep*»._ . 

10. 1  dMn't  line  money  for  gas  because  al  the 
pawn  shops  were  dosed. 


■  ASK  A  PREMIER  100  IT  LEADER 


Ram  Murthy 

The  director  of  application 
systems  at  the  Peace  Corps 
answers  questions  about 

education,  certifications, 


leadership  and  dealing  with  slackers. 


:  Would  an  A*  certification 
I  in  networking,  along  with  a 
I  master's  dogm.be  useful  in 
moving  one’s  career  along? 
— j  And  is  an  online  master's  de- 
;  gree  worth  much?  The  IT  field 
;  is  continuously  evolving  to  meet 
'■  business  needs.  This  implies  that 
the  IT  knowledge  worker  must 
always  be  on  top  of  technology 
;  and  invest  in  continual  learning. 

!  Getting  A*  certification  in 
!  networking  with  a  master's 

i  degree  in  a  related  IT  field  does 
;  somewhat  help,  but  it  must  be 
I  backed  up  with  professional 
I  on-the-job  skills  and  experi- 
I  ence.  With  respectto  online 
■  master’s  degrees,  one  from  an 


expecting  to  have  information 
available  anytime,  anywhere  and 
by  any  means,  skills  in  mobile 
technology  and  mobile  applica¬ 
tion  development  will  be  widely 
sought.  I  would  also  suggest 
that  your  rfeume  should  show 
support  for  your  training  and 
educationwithreal-lifeappdev 
examples  to  get  the  attention  of 
recruiters. 


In  12  y enrs  in  IT.  I’ve  always 
been  frustrated  by  those 


colleagues  who  manage  to 
do  the  least  possible  work. 
They're  like  Wally  In  the 
“Dilbert”  comic  strips,  and 


accredited  university 
does  carry  weight.  In 
fact,  in  this  network¬ 
centric  world,  online 


to  catch  on.  I’ve 
never  wanted  to 


rat  these  people 
out,  but  as  work- 


and  self-paced  edu- 


personal  activities  are  becom¬ 
ing  more  common. 

Remember,  though,  that  while 


ing.  (Why  are  the  Wallys  al¬ 
ways  the  last  to  be  laid  off?) 
What  would  you  advise?  The 


help  you  get  an  entry-level  job, 
you  will  need  to  support  your 
credentials  with  work  experience 
if  you  want  to  move  up. 

I’m  a  12-year  IT  industry 
professional  whose  position 
was  recently  outsourced. 

to  school  to  obtain  mobile 
application  development 
training  at  a  cost  of  about 
S6.000.  Do  you  think  it’s 
worth  the  investment?  Yes. 
And  if  finding  funds  for  the  train- 


and  awareness.  Your  managers 
are  completely  blind  on  resource 
allocation  and  performance 
management.  There  should  be 
better  accountability.  They  need 
to  institute  weekly  status  reports 
and  related  communication  tools 
on  the  work  accomplished  that 
will  show  who  is  responsible, 
accountable  and  producing  the 

As  for  you  and  the  other  non- 
Wallys.  don't  be  modest  about 
marketing  yourself  and  your  ac¬ 
complishments.  You  might  also 


ingisanissue.checkoutthe 
self-paced  and  free  classes  and 
code  campsthatvendorslike 
Microsoft  and  IBM  offer. 

With  end  users  these  days 


need  to  employ  creative  commu¬ 
nications  to  your  customers  and 
business  units  so  the  message 
circles  back  to  your  boss  on  who 
actually  produces  the  work. 


COMPUTERWORLD 


IT|careers 


IT  Opportunities 

our  rapid  growth,  wo  have  the  following  positions  available: 


tivrty. . 


SharHank 

TRUE  TALES  OF  IT  LIFE  AS  TOLD  TO  SHARKY 


How  It’s  Done 

This  pilot  fish  brass  that  he's 
worked  on  a  software  project 
that  finished  on  time,  on  bud¬ 
get  and  with  only  “I  thought 

when  it  was  shown  to  the 
customer  -  and  no  problems 
when  it  was  delivered.  “Not 
possible,  you  say?”  asks 
fish.  “Well,  I  do  grant  it  was  a 
soecial  case:  The  app  was  for 


app.  For  some  reason,  almost 
all  of  the  “gotta  have  now" 
changes  got  to  that  point 
and  suddenly  became  “next 
release."  We  just  sailed  along 
with  the  original  design  and 
the  few  changes  requested  by 
the  president." 

No,  Not  Quite 

New  router  has  just  been 
configured  for  a  secure  tunnel 


dead  in  the  water.  So  he 
calls  the  user  again.  Fish:  Hey. 
did  you  restart  the  router? 
User  “Yes.  but  I  had  to  use  a 
paper  clip."  Fish:  What?  User 
“I  had  to  use  a  paper  dip  to 
reset  the  router."  Fish:  You're 
kidding,  right?  User  “No. 
why?"  Fish:  Are  you  telling 
me  that  you  took  a  paper  clip 
and  inserted  it  in  a  little  hole? 
User  “Yup.  The  little  hole  said 
Reset,  and  that  was  what  you 
told  me  to  do."  Fish:  I  told  you 
to  restart  the  router.  User: 
“Isn’t  that  the  same?" 

A  Little  Too  Quick 

This  small  business's  home¬ 
grown  accounting  system 


that  used  to  take  six  hours 
now  finished  in  less  than  20 
seconds."  says  fish,  who's 
justly  proud  of  his  effort.  “She 
called  in  the  big  boss  and 
started  bragging  about  money 
well  spent.  That’s  when  I 
made  my  big  mistake:  I  told 
them  I  had  adapted  code  from 
a  journal.  The  big  boss  looked 
at  me  and  said.  'That’s  what 
we're  paying  you  for.  to  type 
in  stuff  from  a  magazine?'  I 
had  learned  the  hard  way  the 
first  rule  in  software  develop¬ 
ment:  Don't  tell  everything 
you  know.” 

■  Sharky's first  rule:  Tell  me 
everything  about  your  true 
tale  of  IT  life  at  sharky@ 


I  FRANKLY  SPEAKING 

Frank  Havi 


‘Office’  Politics 


K,  TRY  TO  FOLLOW  THIS:  Microsoft  has  spent 
the  past  two  years  slamming  its  Open  XML  file 
format  through  the  process  to  make  it  an  interna¬ 
tional  standard.  Along  the  way,  there’s  been  arm- 
twisting,  committee-packing,  bribery  and  other  chicanery.  But 
by  last  week,  Microsoft  was  one  step  away  from  success. 

And  that’s  when  Microsoft  adopted  a  competing  standard. 


Sound  crazy?  Sure 
—  until  you  learn  that 
Microsoft’s  own  products 
don’t  actually  conform 
to  the  standard  that  Mi¬ 
crosoft  has  been  twisting 
arms  to  pass.  And  that 
the  competing  standard, 
the  OpenDocument  for¬ 
mat  (ODF),  will  actually 
be  easier  to  add  to  Mi¬ 
crosoft  Office  than  Open 
XML  would  be. 

So  if  Microsoft  wants 
to  sell  an  office  suite  with 
a  hie  format  that  meets 
formal  international  stan¬ 
dards  anytime  soon,  it 
has  to  go  with  ODF. 

That’s  why  the  compa¬ 
ny  announced  last  week 
that  the  next  service  pack 
for  Office  2007  will  in¬ 
clude  the  ability  to  save 
Office  documents  in  ODF 
but  that  complying  with 
:  the  Open  XML  standard 
will  have  to  wait  until  the 
:  next  full  version  of  Mi- 
j  crosoft  Office. 

Think  you’re  all  the 
way  down  this  rabbit 
:  hole?  Think  again;  Why 
is  Microsoft  so  interested 


in  conforming  to  inter¬ 
national  standards  with 
its  office  suite,  anyway? 
Doesn't  Microsoft  al¬ 
ready  pretty  much  own 
that  market? 

Sure.  And  that’s  why 
developers  of  competing 
office  suites  —  in  par¬ 
ticular,  the  open-source 
OpenOffice  —  started 
lobbying  years  ago  to 
get  large  users  such  as 
governments  to  require 
archival  storage  formats 
that  aren’t  under  the  con¬ 
trol  of  a  single  vendor. 

They  had  a  point.  Mi¬ 
crosoft  is  notorious  for 
changing  its  file  formats 
with  every  new  release  of 
Office  and  only  partially 
documenting  the  for¬ 
mats.  That  threatens  to 


■  Turns  out  the 
OpenDocument  file 
format  will  actually 
be  easier  to  add  to 
Microsoft  Office 
than  Open  XML 
would  be. 


turn  archival  documents 
created  with  Office  into 
just  so  many  incompre¬ 
hensible  bits. 

The  competitors  spent 
five  years  getting  their 
OpenDocument  format 
for  XML-based  docu¬ 
ments  approved  as  a  for¬ 
mal  standard,  first  by  the 
OASIS  consortium  and 
then  by  the  international 
standards  group  ISO. 
They  hoped  that  would 
give  them  a  leg  up 
against  Microsoft, 
which  was  commit¬ 
ted  to  its  own  XML 
document  format. 

Open  XML. 

But  Microsoft 
found  a  tame  stan¬ 
dards  group,  Ecma,  to 
fast-track  Open  XML 
to  become  a  standard. 
Despite  complaints  that 
the  fast-track  process  is 
supposed  to  be  only  for 
well-understood,  widely 
implemented  formats  — 
and  there  was  only  one 
vendor  offering  Open 
XML,  Microsoft  —  by  late 
April,  Microsoft  had  nar¬ 


rowly  won  the  final  round 
of  votes,  and  its  format 
was  a  draft  ISO  standard. 

That  was  when  ISO 
revealed  that  Microsoft 
Office  2007  doesn’t  actu¬ 
ally  meet  the  spec  for 
the  standard  Microsoft 
worked  so  hard  to  pass. 

Which  means  there  are 
zero  vendors  currently 
offering  Open  XML. 

After  a  hard  look  at 
how  long  it  would  take  to 
meet  the  ISO  specifica¬ 
tions  for  each  of  the  for¬ 
mats,  Microsoft  decided 
ODF  would  be  easier  to 
do.  That’s  why  it  will 
come  first. 

And  here’s  the  fun- 
house-mirror  result  of 
this  long,  strange  trip: 

Microsoft  wins  its  stan¬ 
dards  battle,  but  adopts 
the  XML  file  format  it  has 
fought  against  for  years. 

Microsoft’s  competi¬ 
tors  succeed  in  getting 
Microsoft  to  adopt  their 
file  format  —  but 
lose  their  longed- 
for  leg  up  against 
Microsoft  Office. 

And  users  get  the 
standard  XML  file 
format  they  need 
—  just  nothing  like 
the  way  they  expected  to 
get  it. 

Follow  all  that?  Good. 
Now  will  someone  please 
remind  me  again  that 
standards  are  all  about 
predictability?  ■ 

Frank  Hayes  is  Computer- 
world’s  senior  news 
columnist.  Contact  him 
atfrank_hayes@ 
computerworld.com. 


The  fastest  way  to  have  a  connected  workplace. 


ImterSystems 


See  product  demonstrations  at  InterSystems.com/Connectl4A 
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Open.  Scalable.  And  now  fully  supported  by  Sun  around  the  globe. 

We’d  name  names,  but  the  copyright  police  would  get  out  their  whistles.  (Think  major  search  engines,  social  networking 
and  video  viewing  sites).  Let’s  just  say  the  cream  of  the  Web  2.0  crop  all  have  one  thing  in  common.  They  run  MySQU  the 
world’s  number  one  database  for  delivering  online  applications  -  and  now  backed  by  Sun.  When  you  go  with  a  MySQL 
Enterprise  subscription,  you  get  unrivaled  production  support,  monitoring  services  and  the  world’s  most  popular  open 
source  database.  You  can  expect  a  TCO  reduction  of  up  to  90  percent.  And  MySQL  Database  is  easy,  safe,  reliable  and 
fast.  Find  out  why  thousands  of  corporations  trust  their  online  practices  to  MySQL  and  Sun.  For  a  free  update  on  the 
benefits  of  having  an  open  source  database,  call  1-866-221-0634.  Then  download  a  free  30-day  trial  at  mysql.com/tnals. 
You’ll  be  able  to  say  with  confidence,  'My  company  is  ready  to  take  on  anything.’ 
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